CVE-2015-0202
EPSS 2.1%
Description
The mod_dav_svn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service (memory consumption) via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes.
How to fix CVE-2015-0202
To remediate CVE-2015-0202, upgrade the affected package to a fixed version below.
- Debian/subversion—upgrade to 1.8.10-6 or later
Is CVE-2015-0202 being exploited?
Low — EPSS is 2.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.8.10-6